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(54) Support for trusted software distribution 

(57) A form of authentication is provided wherein a 
trusted third party signs a certificate to identify the au- 
thor of a program and to secure its integrity. The pro- 
gram code is encapsulated or otherwise associated with 
the certificate and an access control list (ACL). The ac- 
cess control list describes the permissions and resourc- 
es required by the code. An enforcement mechanism 
which allocates system permissions and resources in 
accordance with the ACL. In a preferred embodiment, 
a code production system communicates with a certifi- 
cation agency, which is a trusted third party The certifi- 
cation agency issues a certificate for the code and a cer- 
tificate for the access list of that code. Once the certifi- 
cate is issued it is not possible for any party to modify 
the code or access list without invalidating the certifi- 
cate. The code and its ACL, along with their certificates 
are stored on a server. A client downloading the code 
or access list can verify the integrity of the code/access 
list and the system can enforce the access list such that 
the permissions and resources are not exceeded. 
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